A python/linux based network heads up display that passively monitors traffic on your local network and identifies devices, their IP addresses, MAC addresses, interface manufacturer, and discovery protocol data.
Tested with Python version 3.6.x
Required Python3 Modules:
- npyscreen -> pip3 install npyscreen
- scapy -> pip3 install scapy
Required Linux Tools
- arp-scan -> apt install arp-scan
Usage: python3 network_hud.py -i <interface_name> -n <display_interval> -a <auto_scan_interval> python3 network_hud.py -i eno1 -n 1 -a 0
In Tool Usage: arp-scan -> enter the menu using ctrl-x while the Network HUD is running and select "Execute 'arp-scan -l'" and press enter view collected device data -> select device from the list of network devices and open tcp ports, open udp ports, protocols observed, and discovery protocols will be displayed in information box
Discovery Protocols Collected:
- Cisco Discovery Protocol
- TivoConnect Discovery Protocol - can be used to identify model numbers in some Netgear devices
- MikroTik Discovery Protocol (in development)
- Link Layer Discovery Protocol (in development)